I hate to say it, but I’m not sure Librem Tunnel is a good choice right now. If I understand correctly, it’s rebranded PIA VPN, which was bought by an arguably “questionable” company a couple of years ago.
See what I found out recently: Librem Tunnel and the acquisition of Private Internet Access
Not to impugn Librem Tunnel per se, but I personally wouldn’t feel comfortable using the underlying Kape Technologies’ service.
Edit: I think Librem Tunnel contracted with PIA before the Kape acquisition of PIA.